Click to Skip Ad
Closing in...

Apple denied the massive iCloud hack (but you should still change your password)

Published Mar 23rd, 2017 8:51AM EDT
iPhone and iCloud Hack: Apple Denies
Image: Jose Sanchez/AP/REX/Shutterstock

If you buy through a BGR link, we may earn an affiliate commission, helping support our expert product labs.

A hacker group claiming to have access to hundreds of millions of iCloud accounts threatened to remotely wipe iPhones associated to these accounts unless Apple pays a ransom amounting to up to $100,000 in cryptocurrency or iTunes gift cards. Just as we suspected at the time, Apple has now confirmed that its servers were not breached. But that doesn’t change the fact that some hackers out there believe they can remotely wipe iPhones linked to certain Apple IDs… so it’s time to change passwords again.

“There have not been any breaches in any of Apple’s systems including iCloud and Apple ID,” a company spokesperson told Fortune. “The alleged list of email addresses and passwords appears to have been obtained from previously compromised third-party services.”

Apple did not confirm the authenticity of the data the Turkish Crime Family says it has, as the report notes. A person familiar with the email accounts and passwords contained in that data set says it matched the LinkedIn breach from 2012 when hackers grabbed information tied to more than 100 million accounts.

The LinkedIn hack was only revealed last year, but that’s enough of a reason to change your passwords, especially if you haven’t done it since then — and especially if you use the same password for several different accounts, including the Apple ID you use on your iPhone.

Apple, meanwhile, is “actively monitoring to prevent unauthorized access to user accounts and are working with law enforcement to identify the criminals involved,” the same spokesperson said. “To protect against these type of attacks, we always recommend that users always use strong passwords, not use those same passwords across sites and turn on two-factor authentication.”

The company says it has taken measures according to “standard procedure,” without elaborating on what’s been done.

Chris Smith Senior Writer

Chris Smith has been covering consumer electronics ever since the iPhone revolutionized the industry in 2007. When he’s not writing about the most recent tech news for BGR, he closely follows the events in Marvel’s Cinematic Universe and other blockbuster franchises.

Outside of work, you’ll catch him streaming new movies and TV shows, or training to run his next marathon.